Windows Vista Forums
Vista Forums Home Join Vista Forums Windows 7 Forum Vista Tutorials Tags
Welcome to Windows Vista Forums. Our forum is dedicated to helping you find solutions with any problems, errors or issues you are experiencing with Windows Vista. The Vista forum also covers news and updates and has an extensive Windows Vista tutorial section that covers a wide range of tips and tricks.

Go Back   Vista Forums > Vista Forums > Network & Sharing
Reload this Page Help analyze my Netmon capture?
Join Now FAQ Search Today's Posts Mark Forums Read

Vista - Help analyze my Netmon capture?

Reply
 
Old 10-20-2008   #1 (permalink)


Vista 32bit
3 posts
 
 

Help analyze my Netmon capture?
Hi my Internet has been acting kind of odd. It will be slow sometimes and pages will timeout from connecting.

I did a capture of all network activity with Netmon 3.2

It appears something is periodically hitting every single port on my network, is this normal?


3 0.000000 {TCP:2, IPv4:1} 89.124.152.77 CH0SEN-XPS TCP TCP:Flags=......S., SrcPort=15629, DstPort=36089, PayloadLen=0, Seq=4291899811, Ack=0, Win=65535 ( ) = 65535
4 0.059000 {TCP:4, IPv4:3} 12.216.90.65 CH0SEN-XPS TCP TCP:Flags=......S., SrcPort=52378, DstPort=36089, PayloadLen=0, Seq=2279846199, Ack=0, Win=8192 ( ) = 8192
5 0.133000 {TCP:6, IPv4:5} 68.229.45.53 CH0SEN-XPS TCP TCP:Flags=......S., SrcPort=53648, DstPort=36089, PayloadLen=0, Seq=93137487, Ack=0, Win=8192 ( Negotiating scale factor 0x2 ) = 8192
6 0.492000 {TCP:8, IPv4:7} 75.80.81.97 CH0SEN-XPS TCP TCP:Flags=......S., SrcPort=3242, DstPort=36089, PayloadLen=0, Seq=1855154334, Ack=0, Win=65535 ( ) = 65535
7 0.969000 {TCP:10, IPv4:9} 78.169.53.32 CH0SEN-XPS TCP TCP:Flags=......S., SrcPort=57681, DstPort=36089, PayloadLen=0, Seq=2593954588, Ack=0, Win=8192 ( ) = 8192
8 1.427000 {TCP:12, IPv4:11} 75.71.137.245 CH0SEN-XPS TCP TCP:Flags=......S., SrcPort=2739, DstPort=36089, PayloadLen=0, Seq=2129435930, Ack=0, Win=16384 ( Negotiating scale factor 0x0 ) = 16384
9 2.065000 {TCP:14, IPv4:13} 71.229.240.158 CH0SEN-XPS TCP TCP:Flags=......S., SrcPort=1323, DstPort=36089, PayloadLen=0, Seq=3296122213, Ack=0, Win=65535 ( ) = 65535
10 2.598000 {TCP:16, IPv4:15} 83.212.136.210 CH0SEN-XPS TCP TCP:Flags=...A...., SrcPort=12638, DstPort=49362, PayloadLen=1204, Seq=698532619 - 698533823, Ack=951063431, Win=64194
11 2.730000 {TCP:18, IPv4:17} 69.157.32.205 CH0SEN-XPS TCP TCP:Flags=......S., SrcPort=2876, DstPort=36089, PayloadLen=0, Seq=2375825955, Ack=0, Win=60984 ( ) = 60984
12 3.229000 {TCP:20, IPv4:19} 213.93.114.207 CH0SEN-XPS TCP TCP:Flags=......S., SrcPort=33310, DstPort=36089, PayloadLen=0, Seq=1152168965, Ack=0, Win=8192 ( ) = 8192
13 3.343000 {TCP:8, IPv4:7} 75.80.81.97 CH0SEN-XPS TCP TCP:[SynReTransmit #6]Flags=......S., SrcPort=3242, DstPort=36089, PayloadLen=0, Seq=1855154334, Ack=0, Win=65535 ( ) = 65535
14 3.533000 {TCP:22, IPv4:21} 70.178.21.137 CH0SEN-XPS TCP TCP:Flags=......S., SrcPort=1177, DstPort=36089, PayloadLen=0, Seq=1204040906, Ack=0, Win=65535 ( ) = 65535
17 4.368000 {TCP:12, IPv4:11} 75.71.137.245 CH0SEN-XPS TCP TCP:[SynReTransmit #8]Flags=......S., SrcPort=2739, DstPort=36089, PayloadLen=0, Seq=2129435930, Ack=0, Win=16384 ( Negotiating scale factor 0x0 ) = 16384
18 4.556000 {TCP:29, IPv4:28} 87.205.195.187 CH0SEN-XPS TCP TCP:Flags=...AP..., SrcPort=1149, DstPort=36089, PayloadLen=4, Seq=3047473328 - 3047473332, Ack=271529941, Win=17115
19 5.273000 {TCP:31, IPv4:30} CH0SEN-XPS 60.48.69.47 TCP TCP:Flags=...A.R.., SrcPort=36089, DstPort=2388, PayloadLen=0, Seq=1534966110, Ack=1572921391, Win=0
20 5.544000 {TCP:29, IPv4:28} 87.205.195.187 CH0SEN-XPS TCP TCP:[ReTransmit #18]Flags=...AP..., SrcPort=1149, DstPort=36089, PayloadLen=4, Seq=3047473328 - 3047473332, Ack=271529941, Win=17115
21 5.962000 192.168.10.1 CH0SEN-XPS ARP ARP:Request, 192.168.10.1 asks for 192.168.10.102
22 5.962000 CH0SEN-XPS 192.168.10.1 ARP ARP:Response, 192.168.10.102 at 00-1A-A0-DC-CD-25
23 6.637000 {TCP:33, IPv4:32} 74.141.66.221 CH0SEN-XPS TCP TCP:Flags=......S., SrcPort=63522, DstPort=36089, PayloadLen=0, Seq=2930632996, Ack=0, Win=8192 ( ) = 8192
24 6.984000 {TCP:10, IPv4:9} 78.169.53.32 CH0SEN-XPS TCP TCP:[SynReTransmit #7]Flags=......S., SrcPort=57681, DstPort=36089, PayloadLen=0, Seq=2593954588, Ack=0, Win=8192 ( ) = 8192
25 7.447000 {TCP:35, IPv4:34} 68.27.195.130 CH0SEN-XPS TCP TCP:Flags=...AP..., SrcPort=41893, DstPort=36089, PayloadLen=409, Seq=3891186289 - 3891186698, Ack=1142959962, Win=7504
26 7.809000 {TCP:29, IPv4:28} 87.205.195.187 CH0SEN-XPS TCP TCP:[ReTransmit #18]Flags=...AP..., SrcPort=1149, DstPort=36089, PayloadLen=4, Seq=3047473328 - 3047473332, Ack=271529941, Win=17115
27 9.044000 {TCP:37, IPv4:36} 59.189.193.242 CH0SEN-XPS TCP TCP:Flags=...AP..., SrcPort=58366, DstPort=36089, PayloadLen=253, Seq=409697985 - 409698238, Ack=1816841301, Win=17424
28 9.362000 {TCP:8, IPv4:7} 75.80.81.97 CH0SEN-XPS TCP TCP:[SynReTransmit #6]Flags=......S., SrcPort=3242, DstPort=36089, PayloadLen=0, Seq=1855154334, Ack=0, Win=65535 ( ) = 65535
29 9.544000 {TCP:33, IPv4:32} 74.141.66.221 CH0SEN-XPS TCP TCP:[SynReTransmit #23]Flags=......S., SrcPort=63522, DstPort=36089, PayloadLen=0, Seq=2930632996, Ack=0, Win=8192 ( ) = 8192
30 9.684000 {TCP:39, IPv4:38} 69.247.126.159 CH0SEN-XPS TCP TCP:Flags=...AP..., SrcPort=56636, DstPort=36089, PayloadLen=219, Seq=2199848547 - 2199848766, Ack=3963247741, Win=64801
31 9.776000 {TCP:41, IPv4:40} 216.248.90.26 CH0SEN-XPS TCP TCP:Flags=......S., SrcPort=45645, DstPort=36089, PayloadLen=0, Seq=3369049606, Ack=0, Win=5808 ( Negotiating scale factor 0x5 ) = 5808
35 10.190000 {IPv4:47} 192.168.10.1 224.0.0.1 IGMP IGMP:IGMP Membership query
36 10.209000 {TCP:39, IPv4:38} 69.247.126.159 CH0SEN-XPS TCP TCP:[ReTransmit #30]Flags=...AP..., SrcPort=56636, DstPort=36089, PayloadLen=219, Seq=2199848547 - 2199848766, Ack=3963247741, Win=64801
37 10.408000 {TCP:12, IPv4:11} 75.71.137.245 CH0SEN-XPS TCP TCP:[SynReTransmit #8]Flags=......S., SrcPort=2739, DstPort=36089, PayloadLen=0, Seq=2129435930, Ack=0, Win=16384 ( Negotiating scale factor 0x0 ) = 16384
38 11.173000 {TCP:37, IPv4:36} 59.189.193.242 CH0SEN-XPS TCP TCP:[ReTransmit #27]Flags=...AP..., SrcPort=58366, DstPort=36089, PayloadLen=253, Seq=409697985 - 409698238, Ack=1816841301, Win=17424
39 11.324000 {TCP:39, IPv4:38} 69.247.126.159 CH0SEN-XPS TCP TCP:[ReTransmit #30]Flags=...AP..., SrcPort=56636, DstPort=36089, PayloadLen=219, Seq=2199848547 - 2199848766, Ack=3963247741, Win=64801
40 11.653000 {TCP:49, IPv4:48} 58.69.68.243 CH0SEN-XPS TCP TCP:Flags=...A...., SrcPort=4053, DstPort=36089, PayloadLen=536, Seq=1684352302 - 1684352838, Ack=1430182324, Win=65535
41 12.242000 {TCP:29, IPv4:28} 87.205.195.187 CH0SEN-XPS TCP TCP:[ReTransmit #18]Flags=...AP..., SrcPort=1149, DstPort=36089, PayloadLen=4, Seq=3047473328 - 3047473332, Ack=271529941, Win=17115
43 12.736000 {TCP:41, IPv4:40} 216.248.90.26 CH0SEN-XPS TCP TCP:[SynReTransmit #31]Flags=......S., SrcPort=45645, DstPort=36089, PayloadLen=0, Seq=3369049606, Ack=0, Win=5808 ( Negotiating scale factor 0x5 ) = 5808
44 13.558000 {TCP:39, IPv4:38} 69.247.126.159 CH0SEN-XPS TCP TCP:[ReTransmit #30]Flags=...AP..., SrcPort=56636, DstPort=36089, PayloadLen=219, Seq=2199848547 - 2199848766, Ack=3963247741, Win=64801
45 13.564000 {TCP:52, IPv4:51} 74.195.203.174 CH0SEN-XPS TCP TCP:Flags=...AP..F, SrcPort=39152, DstPort=49220, PayloadLen=283, Seq=638277502 - 638277785, Ack=1316135206, Win=260
46 13.564000 {TCP:52, IPv4:51} CH0SEN-XPS 74.195.203.174 TCP TCP:Flags=...A.R.., SrcPort=49220, DstPort=39152, PayloadLen=0, Seq=1316135206, Ack=638277785, Win=0
47 13.999000 {TCP:54, IPv4:53} 76.29.254.116 CH0SEN-XPS TCP TCP:Flags=...AP..F, SrcPort=57038, DstPort=49228, PayloadLen=440, Seq=1034168973 - 1034169413, Ack=3736365102, Win=64157
48 13.999000 {TCP:54, IPv4:53} CH0SEN-XPS 76.29.254.116 TCP TCP:Flags=...A.R.., SrcPort=49228, DstPort=57038, PayloadLen=0, Seq=3736365102, Ack=1034169413, Win=0
49 14.481000 {TCP:56, IPv4:55} 84.36.3.136 CH0SEN-XPS TCP TCP:Flags=......S., SrcPort=1489, DstPort=36089, PayloadLen=0, Seq=1099660187, Ack=0, Win=65535 ( Negotiating scale factor 0x2 ) = 65535
50 14.500000 {TCP:58, IPv4:57} 79.115.10.144 CH0SEN-XPS TCP TCP:Flags=......S., SrcPort=3036, DstPort=36089, PayloadLen=0, Seq=1230380347, Ack=0, Win=65535 ( ) = 65535
52 14.768000 {TCP:60, IPv4:59} 67.240.239.224 CH0SEN-XPS TCP TCP:Flags=...AP..., SrcPort=1852, DstPort=36089, PayloadLen=152, Seq=4258854776 - 4258854928, Ack=3793891397, Win=16516
53 14.809000 {TCP:62, IPv4:61} 78.176.110.71 CH0SEN-XPS TCP TCP:Flags=...AP..., SrcPort=51163, DstPort=49263, PayloadLen=171, Seq=3485536494 - 3485536665, Ack=4286751056, Win=65531
54 14.944000 {TCP:64, IPv4:63} 88.160.109.58 CH0SEN-XPS TCP TCP:Flags=......S., SrcPort=1913, DstPort=36089, PayloadLen=0, Seq=366899212, Ack=0, Win=65535 ( Negotiating scale factor 0x3 ) = 65535
55 15.132000 {TCP:66, IPv4:65} 79.167.66.58 CH0SEN-XPS TCP TCP:Flags=......S., SrcPort=54976, DstPort=36089, PayloadLen=0, Seq=3140451582, Ack=0, Win=8192 ( ) = 8192
56 15.270000 {TCP:68, IPv4:67} 76.19.139.131 CH0SEN-XPS TCP TCP:Flags=......S., SrcPort=4176, DstPort=36089, PayloadLen=0, Seq=3584784464, Ack=0, Win=65535 ( ) = 65535
57 15.373000 {TCP:70, IPv4:69} 92.106.47.116 CH0SEN-XPS TCP TCP:Flags=...A...., SrcPort=65303, DstPort=36089, PayloadLen=1396, Seq=864045150 - 864046546, Ack=746520330, Win=65535
58 15.469000 {TCP:37, IPv4:36} 59.189.193.242 CH0SEN-XPS TCP TCP:[ReTransmit #27]Flags=...AP..., SrcPort=58366, DstPort=36089, PayloadLen=253, Seq=409697985 - 409698238, Ack=1816841301, Win=17424
59 15.535000 {TCP:33, IPv4:32} 74.141.66.221 CH0SEN-XPS TCP TCP:[SynReTransmit #23]Flags=......S., SrcPort=63522, DstPort=36089, PayloadLen=0, Seq=2930632996, Ack=0, Win=8192 ( ) = 8192
60 15.565000 {TCP:2, IPv4:1} 89.124.152.77 CH0SEN-XPS TCP TCP:Flags=.....R.., SrcPort=15629, DstPort=36089, PayloadLen=0, Seq=4291899812, Ack=0, Win=65535 (scale factor 0x0) = 65535
61 15.868000 {TCP:39, IPv4:38} 69.247.126.159 CH0SEN-XPS TCP TCP:[ReTransmit #30]Flags=...AP..., SrcPort=56636, DstPort=36089, PayloadLen=219, Seq=2199848547 - 2199848766, Ack=3963247741, Win=64801
63 16.019000 {TCP:72, IPv4:71} 72.47.30.105 CH0SEN-XPS TCP TCP:Flags=......S., SrcPort=50309, DstPort=36089, PayloadLen=0, Seq=2646071055, Ack=0, Win=8192 ( ) = 8192
65 16.392000 {TCP:74, IPv4:73} 79.103.170.14 CH0SEN-XPS TCP TCP:Flags=......S., SrcPort=52095, DstPort=36089, PayloadLen=0, Seq=2952143628, Ack=0, Win=65535 ( ) = 65535
66 16.566000 {TCP:76, IPv4:75} 60.240.51.6 CH0SEN-XPS TCP TCP:Flags=...A.R.., SrcPort=51655, DstPort=36089, PayloadLen=0, Seq=3808988059, Ack=825373441, Win=0
67 17.176000 {TCP:78, IPv4:77} 76.115.0.79 CH0SEN-XPS TCP TCP:Flags=......S., SrcPort=62952, DstPort=36089, PayloadLen=0, Seq=208966606, Ack=0, Win=65535 ( Negotiating scale factor 0x0 ) = 65535
68 17.395000 {TCP:58, IPv4:57} 79.115.10.144 CH0SEN-XPS TCP TCP:[SynReTransmit #50]Flags=......S., SrcPort=3036, DstPort=36089, PayloadLen=0, Seq=1230380347, Ack=0, Win=65535 ( ) = 65535
69 17.474000 {TCP:56, IPv4:55} 84.36.3.136 CH0SEN-XPS TCP TCP:[SynReTransmit #49]Flags=......S., SrcPort=1489, DstPort=36089, PayloadLen=0, Seq=1099660187, Ack=0, Win=65535 ( Negotiating scale factor 0x2 ) = 65535
70 17.652000 {TCP:80, IPv4:79} 130.127.45.173 CH0SEN-XPS TCP TCP:Flags=......S., SrcPort=63345, DstPort=36089, PayloadLen=0, Seq=419463848, Ack=0, Win=8192 ( Negotiating scale factor 0x2 ) = 8192


..................


16881 2204.271000 {TCP:2768, IPv4:2767} 70.53.159.15 CH0SEN-XPS TCP TCP:[SynReTransmit #16856]Flags=......S., SrcPort=58031, DstPort=36089, PayloadLen=0, Seq=2644946534, Ack=0, Win=8192 ( ) = 8192
16882 2204.361000 {TCP:2760, IPv4:320} 90.185.199.252 CH0SEN-XPS TCP TCP:[SynReTransmit #16819]Flags=......S., SrcPort=18765, DstPort=36089, PayloadLen=0, Seq=281495210, Ack=0, Win=8192 ( Negotiating scale factor 0x2 ) = 8192
16883 2204.489000 {TCP:2769, IPv4:324} 91.190.117.253 CH0SEN-XPS TCP TCP:[SynReTransmit #16857]Flags=......S., SrcPort=2888, DstPort=36089, PayloadLen=0, Seq=3383831211, Ack=0, Win=65535 ( Negotiating scale factor 0x0 ) = 65535
16884 2205.007000 {TCP:2761, IPv4:2154} 87.203.214.232 CH0SEN-XPS TCP TCP:[SynReTransmit #16820]Flags=......S., SrcPort=3866, DstPort=36089, PayloadLen=0, Seq=2590675187, Ack=0, Win=65535 ( Negotiating scale factor 0x0 ) = 65535
16885 2205.118000 {TCP:2757, IPv4:2756} 8.7.69.226 CH0SEN-XPS TCP TCP:[SynReTransmit #16817]Flags=......S., SrcPort=31094, DstPort=36089, PayloadLen=0, Seq=2322229935, Ack=0, Win=65535 ( Negotiating scale factor 0x0 ) = 65535
16887 2206.276000 {TCP:2770, IPv4:239} 60.48.67.52 CH0SEN-XPS TCP TCP:Flags=......S., SrcPort=4755, DstPort=36089, PayloadLen=0, Seq=1798398982, Ack=0, Win=65535 ( Negotiating scale factor 0x3 ) = 65535
16888 2206.301000 {TCP:2763, IPv4:254} 121.6.120.214 CH0SEN-XPS TCP TCP:[SynReTransmit #16829]Flags=......S., SrcPort=3096, DstPort=36089, PayloadLen=0, Seq=643822586, Ack=0, Win=5840 ( Negotiating scale factor 0x1 ) = 5840
16889 2206.752000 {TCP:2771, IPv4:94} 75.13.76.134 CH0SEN-XPS TCP TCP:Flags=......S., SrcPort=52057, DstPort=36089, PayloadLen=0, Seq=3606370164, Ack=0, Win=8192 ( ) = 8192
16890 2207.069000 {TCP:2766, IPv4:738} 84.165.106.158 CH0SEN-XPS TCP TCP:[SynReTransmit #16837]Flags=......S., SrcPort=3545, DstPort=36089, PayloadLen=0, Seq=2005453244, Ack=0, Win=16384 ( ) = 16384
16891 2207.335000 {TCP:2773, IPv4:2772} 124.121.108.39 CH0SEN-XPS TCP TCP:Flags=......S., SrcPort=15366, DstPort=36089, PayloadLen=0, Seq=382691683, Ack=0, Win=32000 ( ) = 32000
16892 2207.890000 {SMB:131, UDP:130, IPv4:129} CH0SEN-XPS 192.168.10.255 BROWSER BROWSER:Local Master Announcement, ServerName = CH0SEN-XPS
16893 2208.050000 {TCP:2757, IPv4:2756} 8.7.69.226 CH0SEN-XPS TCP TCP:[SynReTransmit #16817]Flags=......S., SrcPort=31094, DstPort=36089, PayloadLen=0, Seq=2322229935, Ack=0, Win=65535 ( Negotiating scale factor 0x0 ) = 65535
16894 2208.194000 {TCP:2774, IPv4:141} 88.245.146.143 CH0SEN-XPS TCP TCP:Flags=......S., SrcPort=2449, DstPort=36089, PayloadLen=0, Seq=705714636, Ack=0, Win=65535 ( ) = 65535
16895 2209.247000 {TCP:2770, IPv4:239} 60.48.67.52 CH0SEN-XPS TCP TCP:[SynReTransmit #16887]Flags=......S., SrcPort=4755, DstPort=36089, PayloadLen=0, Seq=1798398982, Ack=0, Win=65535 ( Negotiating scale factor 0x3 ) = 65535
16896 2209.748000 {TCP:2771, IPv4:94} 75.13.76.134 CH0SEN-XPS TCP TCP:[SynReTransmit #16889]Flags=......S., SrcPort=52057, DstPort=36089, PayloadLen=0, Seq=3606370164, Ack=0, Win=8192 ( ) = 8192
16897 2210.123000 {TCP:2776, IPv4:2775} 82.9.232.106 CH0SEN-XPS TCP TCP:Flags=......S., SrcPort=4449, DstPort=36089, PayloadLen=0, Seq=852769917, Ack=0, Win=16384 ( ) = 16384
16898 2210.249000 {TCP:2768, IPv4:2767} 70.53.159.15 CH0SEN-XPS TCP TCP:[SynReTransmit #16856]Flags=......S., SrcPort=58031, DstPort=36089, PayloadLen=0, Seq=2644946534, Ack=0, Win=8192 ( ) = 8192
16905 2210.508000 {TCP:2769, IPv4:324} 91.190.117.253 CH0SEN-XPS TCP TCP:[SynReTransmit #16857]Flags=......S., SrcPort=2888, DstPort=36089, PayloadLen=0, Seq=3383831211, Ack=0, Win=65535 ( Negotiating scale factor 0x0 ) = 65535
16906 2211.163000 {UDP:2778, IPv4:129} CH0SEN-XPS 192.168.10.255 NbtNs NbtNs:Query Request for CH0SEN-XPS <0x1C> Domain Controllers
16907 2211.236000 {TCP:2774, IPv4:141} 88.245.146.143 CH0SEN-XPS TCP TCP:[SynReTransmit #16894]Flags=......S., SrcPort=2449, DstPort=36089, PayloadLen=0, Seq=705714636, Ack=0, Win=65535 ( ) = 65535
16908 2211.913000 {UDP:2778, IPv4:129} CH0SEN-XPS 192.168.10.255 NbtNs NbtNs:Query Request for CH0SEN-XPS <0x1C> Domain Controllers
16909 2212.663000 {UDP:2778, IPv4:129} CH0SEN-XPS 192.168.10.255 NbtNs NbtNs:Query Request for CH0SEN-XPS <0x1C> Domain Controllers
16910 2212.881000 {TCP:2776, IPv4:2775} 82.9.232.106 CH0SEN-XPS TCP TCP:[SynReTransmit #16897]Flags=......S., SrcPort=4449, DstPort=36089, PayloadLen=0, Seq=852769917, Ack=0, Win=16384 ( ) = 16384
16912 2214.256000 {TCP:2780, IPv4:2779} 78.148.114.249 CH0SEN-XPS TCP TCP:Flags=......S., SrcPort=4473, DstPort=36089, PayloadLen=0, Seq=487640535, Ack=0, Win=65535 ( ) = 65535
16913 2214.293000 {TCP:2757, IPv4:2756} 8.7.69.226 CH0SEN-XPS TCP TCP:[SynReTransmit #16817]Flags=......S., SrcPort=31094, DstPort=36089, PayloadLen=0, Seq=2322229935, Ack=0, Win=65535 ( Negotiating scale factor 0x0 ) = 65535
16914 2214.721000 {TCP:2781, IPv4:55} 84.36.3.136 CH0SEN-XPS TCP TCP:Flags=......S., SrcPort=3280, DstPort=36089, PayloadLen=0, Seq=2554350733, Ack=0, Win=65535 ( Negotiating scale factor 0x2 ) = 65535
16915 2215.497000 {TCP:2771, IPv4:94} 75.13.76.134 CH0SEN-XPS TCP TCP:[SynReTransmit #16889]Flags=......S., SrcPort=52057, DstPort=36089, PayloadLen=0, Seq=3606370164, Ack=0, Win=8192 ( ) = 8192
16916 2217.246000 {TCP:2780, IPv4:2779} 78.148.114.249 CH0SEN-XPS TCP TCP:[SynReTransmit #16912]Flags=......S., SrcPort=4473, DstPort=36089, PayloadLen=0, Seq=487640535, Ack=0, Win=65535 ( ) = 65535
16917 2217.548000 {TCP:2781, IPv4:55} 84.36.3.136 CH0SEN-XPS TCP TCP:[SynReTransmit #16914]Flags=......S., SrcPort=3280, DstPort=36089, PayloadLen=0, Seq=2554350733, Ack=0, Win=65535 ( Negotiating scale factor 0x2 ) = 65535
16918 2218.300000 {TCP:2763, IPv4:254} 121.6.120.214 CH0SEN-XPS TCP TCP:[SynReTransmit #16829]Flags=......S., SrcPort=3096, DstPort=36089, PayloadLen=0, Seq=643822586, Ack=0, Win=5840 ( Negotiating scale factor 0x1 ) = 5840
16920 2219.702000 {UDP:2778, IPv4:129} CH0SEN-XPS 192.168.10.255 NbtNs NbtNs:Query Request for CH0SEN-XPS <0x1C> Domain Controllers
16921 2220.452000 {UDP:2778, IPv4:129} CH0SEN-XPS 192.168.10.255 NbtNs NbtNs:Query Request for CH0SEN-XPS <0x1C> Domain Controllers
16922 2220.914000 {TCP:2150, IPv4:383} 201.212.69.60 CH0SEN-XPS TCP TCP:Flags=.....R.., SrcPort=3807, DstPort=36089, PayloadLen=0, Seq=0, Ack=0, Win=0 (scale factor 0x0) = 0
16923 2221.202000 {UDP:2778, IPv4:129} CH0SEN-XPS 192.168.10.255 NbtNs NbtNs:Query Request for CH0SEN-XPS <0x1C> Domain Controllers
16924 2221.484000 {TCP:2782, IPv4:81} 81.219.141.178 CH0SEN-XPS TCP TCP:Flags=......S., SrcPort=4235, DstPort=36089, PayloadLen=0, Seq=1188238316, Ack=0, Win=65535 ( Negotiating scale factor 0x2 ) = 65535
16925 2223.110000 {TCP:2784, IPv4:2783} 74.5.38.209 CH0SEN-XPS TCP TCP:Flags=.....R.., SrcPort=20107, DstPort=36089, PayloadLen=0, Seq=0, Ack=0, Win=0
16926 2223.283000 {TCP:2780, IPv4:2779} 78.148.114.249 CH0SEN-XPS TCP TCP:[SynReTransmit #16912]Flags=......S., SrcPort=4473, DstPort=36089, PayloadLen=0, Seq=487640535, Ack=0, Win=65535 ( ) = 65535



===========================================================
PROCESSES
===========================================================
SiSoftware Sandra

Module Information
File Name : [System Process]
Type : 32-bit
Priority : Idle
Expected Windows Version : 4.00
Number of Threads : 4

Module(s) Used By This Process
RpcSandraSrv.exe : 65535, 32-bit, 1.31MB, C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2009\WNt500x86\RpcSandraSrv.exe
ntdll.dll : 65535, 32-bit, 1.15MB, C:\Windows\system32\ntdll.dll
kernel32.dll : 65535, 32-bit, 876kB, C:\Windows\system32\kernel32.dll
NETAPI32.dll : 65535, 32-bit, 468kB, C:\Windows\system32\NETAPI32.dll
msvcrt.dll : 65535, 32-bit, 680kB, C:\Windows\system32\msvcrt.dll
ADVAPI32.dll : 65535, 32-bit, 792kB, C:\Windows\system32\ADVAPI32.dll
RPCRT4.dll : 65535, 32-bit, 776kB, C:\Windows\system32\RPCRT4.dll
PSAPI.DLL : 65535, 32-bit, 28kB, C:\Windows\system32\PSAPI.DLL
WININET.dll : 65535, 32-bit, 832kB, C:\Windows\system32\WININET.dll
SHLWAPI.dll : 65535, 32-bit, 352kB, C:\Windows\system32\SHLWAPI.dll
GDI32.dll : 65535, 32-bit, 300kB, C:\Windows\system32\GDI32.dll
USER32.dll : 65535, 32-bit, 628kB, C:\Windows\system32\USER32.dll
Normaliz.dll : 65535, 32-bit, 12kB, C:\Windows\system32\Normaliz.dll
iertutil.dll : 65535, 32-bit, 276kB, C:\Windows\system32\iertutil.dll
VERSION.dll : 65535, 32-bit, 32kB, C:\Windows\system32\VERSION.dll
WS2_32.dll : 65535, 32-bit, 180kB, C:\Windows\system32\WS2_32.dll
NSI.dll : 65535, 32-bit, 24kB, C:\Windows\system32\NSI.dll
OPENGL32.dll : 65535, 32-bit, 812kB, C:\Windows\system32\OPENGL32.dll
GLU32.dll : 65535, 32-bit, 140kB, C:\Windows\system32\GLU32.dll
DDRAW.dll : 65535, 32-bit, 916kB, C:\Windows\system32\DDRAW.dll
DCIMAN32.dll : 65535, 32-bit, 24kB, C:\Windows\system32\DCIMAN32.dll
SETUPAPI.dll : 65535, 32-bit, 1.54MB, C:\Windows\system32\SETUPAPI.dll
OLEAUT32.dll : 65535, 32-bit, 564kB, C:\Windows\system32\OLEAUT32.dll
ole32.dll : 65535, 32-bit, 1.27MB, C:\Windows\system32\ole32.dll
dwmapi.dll : 65535, 32-bit, 48kB, C:\Windows\system32\dwmapi.dll
MPR.dll : 65535, 32-bit, 80kB, C:\Windows\system32\MPR.dll
WINMM.dll : 65535, 32-bit, 200kB, C:\Windows\system32\WINMM.dll
OLEACC.dll : 65535, 32-bit, 228kB, C:\Windows\system32\OLEACC.dll
IPHLPAPI.DLL : 65535, 32-bit, 100kB, C:\Windows\system32\IPHLPAPI.DLL
dhcpcsvc.DLL : 65535, 32-bit, 212kB, C:\Windows\system32\dhcpcsvc.DLL
DNSAPI.dll : 65535, 32-bit, 176kB, C:\Windows\system32\DNSAPI.dll
Secur32.dll : 65535, 32-bit, 80kB, C:\Windows\system32\Secur32.dll
WINNSI.DLL : 65535, 32-bit, 28kB, C:\Windows\system32\WINNSI.DLL
dhcpcsvc6.DLL : 65535, 32-bit, 132kB, C:\Windows\system32\dhcpcsvc6.DLL
POWRPROF.dll : 65535, 32-bit, 104kB, C:\Windows\system32\POWRPROF.dll
WINTRUST.dll : 65535, 32-bit, 180kB, C:\Windows\system32\WINTRUST.dll
CRYPT32.dll : 65535, 32-bit, 964kB, C:\Windows\system32\CRYPT32.dll
MSASN1.dll : 65535, 32-bit, 72kB, C:\Windows\system32\MSASN1.dll
USERENV.dll : 65535, 32-bit, 120kB, C:\Windows\system32\USERENV.dll
imagehlp.dll : 65535, 32-bit, 164kB, C:\Windows\system32\imagehlp.dll
WTSAPI32.dll : 65535, 32-bit, 40kB, C:\Windows\system32\WTSAPI32.dll
MFC80U.DLL : 65535, 32-bit, 1.06MB, C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80U.DLL
MSVCR80.dll : 65535, 32-bit, 620kB, C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.1434_none_d08b6002442c891f\MSVCR80.dll
WINSPOOL.DRV : 65535, 32-bit, 264kB, C:\Windows\system32\WINSPOOL.DRV
SHELL32.dll : 65535, 32-bit, 11.06MB, C:\Windows\system32\SHELL32.dll
IMM32.DLL : 2, 32-bit, 120kB, C:\Windows\system32\IMM32.DLL
MSCTF.dll : 1, 32-bit, 800kB, C:\Windows\system32\MSCTF.dll
LPK.DLL : 1, 32-bit, 36kB, C:\Windows\system32\LPK.DLL
USP10.dll : 1, 32-bit, 500kB, C:\Windows\system32\USP10.dll
avgrsstx.dll : 1, 32-bit, 20kB, C:\Windows\system32\avgrsstx.dll
comctl32.dll : 7, 32-bit, 1.62MB, C:\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll
MFC80ENU.DLL : 1, 32-bit, 56kB, C:\Windows\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_none_43efccf17831d131\MFC80ENU.DLL
CLBCatQ.DLL : 1, 32-bit, 528kB, C:\Windows\system32\CLBCatQ.DLL
rsaenh.dll : 1, 32-bit, 236kB, C:\Windows\system32\rsaenh.dll
ncrypt.dll : 2, 32-bit, 212kB, C:\Windows\system32\ncrypt.dll
BCRYPT.dll : 14, 32-bit, 276kB, C:\Windows\system32\BCRYPT.dll
NTMARTA.DLL : 1, 32-bit, 132kB, C:\Windows\system32\NTMARTA.DLL
WLDAP32.dll : 2, 32-bit, 296kB, C:\Windows\system32\WLDAP32.dll
SAMLIB.dll : 1, 32-bit, 68kB, C:\Windows\system32\SAMLIB.dll
GPAPI.dll : 3, 32-bit, 84kB, C:\Windows\system32\GPAPI.dll
slc.dll : 3, 32-bit, 232kB, C:\Windows\system32\slc.dll
Sandra.mui : 1, 32-bit, 384kB, C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2009\WNt500x86\Sandra.mui
FirewallAPI.dll : 2, 32-bit, 408kB, C:\Windows\system32\FirewallAPI.dll
credssp.dll : 1, 32-bit, 28kB, C:\Windows\system32\credssp.dll
schannel.dll : 1, 32-bit, 272kB, C:\Windows\system32\schannel.dll
DxVA2.dll : 1, 32-bit, 76kB, C:\Windows\system32\DxVA2.dll
d3d9.dll : 2, 32-bit, 1.73MB, C:\Windows\system32\d3d9.dll
d3d8thk.dll : 2, 32-bit, 24kB, C:\Windows\system32\d3d8thk.dll
dxgi.dll : 9, 32-bit, 196kB, C:\Windows\system32\dxgi.dll
d3d10.dll : 2, 32-bit, 1.01MB, C:\Windows\system32\d3d10.dll
d3d10core.dll : 2, 32-bit, 204kB, C:\Windows\system32\d3d10core.dll
DSound.dll : 4, 32-bit, 448kB, C:\Windows\system32\DSound.dll
DInput8.dll : 1, 32-bit, 204kB, C:\Windows\system32\DInput8.dll
dpnet.dll : 1, 32-bit, 384kB, C:\Windows\system32\dpnet.dll
dmime.dll : 1, 32-bit, 196kB, C:\Windows\system32\dmime.dll
dmusic.dll : 1, 32-bit, 112kB, C:\Windows\system32\dmusic.dll
ksuser.dll : 18, 32-bit, 16kB, C:\Windows\system32\ksuser.dll
MSACM32.dll : 3, 32-bit, 80kB, C:\Windows\system32\MSACM32.dll
uxtheme.dll : 4, 32-bit, 252kB, C:\Windows\system32\uxtheme.dll
Sandra.nvc : 1, 32-bit, 88kB, C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2009\WNt500x86\Sandra.nvc
cudart.dll : 1, 32-bit, 188kB, C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2009\WNt500x86\cudart.dll
Sandra.amd : 1, 32-bit, 44kB, C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2009\WNt500x86\Sandra.amd
amdcalrt.dll : 1, 32-bit, 2.30MB, C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2009\WNt500x86\amdcalrt.dll
amdcalcl.dll : 1, 32-bit, 1.46MB, C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2009\WNt500x86\amdcalcl.dll
atimgpud.dll : 1, 32-bit, 164kB, C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2009\WNt500x86\atimgpud.dll
nvapi.dll : 5, 32-bit, 480kB, C:\Windows\system32\nvapi.dll
NvCpl.dll : 1, 32-bit, 13.10MB, C:\Windows\system32\NvCpl.dll
comdlg32.dll : 1, 32-bit, 460kB, C:\Windows\system32\comdlg32.dll
Sandra.wrp : 1, 32-bit, 68kB, C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2009\WNt500x86\Sandra.wrp
mscoree.dll : 4, 32-bit, 280kB, C:\Windows\system32\mscoree.dll
msvcm80.dll : 1, 32-bit, 500kB, C:\Windows\WinSxS\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.1434_none_d08b6002442c891f\msvcm80.dll
jvm.dll : 1, 32-bit, 2.31MB, C:\Program Files\Java\jre1.6.0_07\bin\client\jvm.dll
MSVCR71.dll : 1, 32-bit, 344kB, C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2009\WNt500x86\MSVCR71.dll
apphelp.dll : 65535, 32-bit, 176kB, C:\Windows\system32\apphelp.dll
Sandra.d30 : 1, 32-bit, 40kB, C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2009\WNt500x86\Sandra.d30
d3dx9_38.dll : 1, 32-bit, 3.78MB, C:\Windows\system32\d3dx9_38.dll
Sandra.d40 : 1, 32-bit, 44kB, C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2009\WNt500x86\Sandra.d40
d3dx10_38.dll : 2, 32-bit, 460kB, C:\Windows\system32\d3dx10_38.dll
Sandra.d41 : 1, 32-bit, 44kB, C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2009\WNt500x86\Sandra.d41
d3d10_1.dll : 1, 32-bit, 176kB, C:\Windows\system32\d3d10_1.dll
d3d10_1core.dll : 1, 32-bit, 220kB, C:\Windows\system32\d3d10_1core.dll
nvcuda.dll : 1, 32-bit, 1.60MB, C:\Windows\system32\nvcuda.dll
Wlanapi.dll : 1, 32-bit, 72kB, C:\Windows\system32\Wlanapi.dll
OneX.DLL : 1, 32-bit, 1.48MB, C:\Windows\system32\OneX.DLL
eappprxy.dll : 1, 32-bit, 56kB, C:\Windows\system32\eappprxy.dll
eappcfg.dll : 2, 32-bit, 144kB, C:\Windows\system32\eappcfg.dll
gdiplus.dll : 1, 32-bit, 1.67MB, C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6001.18065_none_9e7abe2ec9c13222\gdiplus.dll
DUser.dll : 1, 32-bit, 192kB, C:\Windows\system32\DUser.dll
wlanutil.dll : 1, 32-bit, 24kB, C:\Windows\system32\wlanutil.dll
DINPUT.DLL : 1, 32-bit, 144kB, C:\Windows\system32\DINPUT.DLL
HID.DLL : 1, 32-bit, 36kB, C:\Windows\system32\HID.DLL
wdmaud.drv : 17, 32-bit, 188kB, C:\Windows\system32\wdmaud.drv
MMDevAPI.DLL : 20, 32-bit, 156kB, C:\Windows\system32\MMDevAPI.DLL
AVRT.dll : 18, 32-bit, 28kB, C:\Windows\system32\AVRT.dll
AUDIOSES.DLL : 1, 32-bit, 132kB, C:\Windows\system32\AUDIOSES.DLL
audioeng.dll : 1, 32-bit, 408kB, C:\Windows\system32\audioeng.dll
msacm32.drv : 2, 32-bit, 36kB, C:\Windows\system32\msacm32.drv
midimap.dll : 1, 32-bit, 28kB, C:\Windows\system32\midimap.dll
wbemprox.dll : 1, 32-bit, 44kB, C:\Windows\system32\wbem\wbemprox.dll
wbemcomn.dll : 2, 32-bit, 364kB, C:\Windows\system32\wbemcomn.dll
wbemsvc.dll : 1, 32-bit, 64kB, C:\Windows\system32\wbem\wbemsvc.dll
fastprox.dll : 1, 32-bit, 612kB, C:\Windows\system32\wbem\fastprox.dll
NTDSAPI.dll : 1, 32-bit, 96kB, C:\Windows\system32\NTDSAPI.dll
WINSTA.dll : 1, 32-bit, 148kB, C:\Windows\system32\WINSTA.dll
Total Module Memory Used : 39.20MB

Process Thread(s)
Thread 1 : Idle
Thread 2 : Idle
Thread 3 : Idle
Thread 4 : Idle

System Memory Summary
Total Process Memory Used : 39.20MB

Performance Tips
Tip 1601 : Program consumes a large amount of memory.
Tip 2 : Double-click tip or press Enter while a tip is selected for more information about the tip.

My System SpecsSystem Spec
Old 10-20-2008   #2 (permalink)


Vista Ultimate 64bit SP2/
1,864 posts
 
 

Re: Help analyze my Netmon capture?
Looks normal to me. I usually have to restart my router about every month cause my internet slows down.
My System SpecsSystem Spec
Old 10-20-2008   #3 (permalink)


Vista 32bit
3 posts
 
 

Re: Help analyze my Netmon capture?
So what is hitting every single port on my router?

I don't understand why and what would do that....
My System SpecsSystem Spec
Old 10-20-2008   #4 (permalink)


Vista Ultimate 64bit SP2/
1,864 posts
 
 

Re: Help analyze my Netmon capture?
That's a firewall blocking whoever is trying to hack or ping your ip address.
My System SpecsSystem Spec
Old 10-20-2008   #5 (permalink)


Vista 32bit
3 posts
 
 

Re: Help analyze my Netmon capture?
When I restart my PC the spam starts over at TCP:1

Uhg someones attacking me? I feel so violated...

I hope I am safe.

Anyway to be sure?

I run AVG and windows firewall... behind a router.

Thanks for the help
My System SpecsSystem Spec
Old 10-20-2008   #6 (permalink)


Vista Ultimate 64bit SP2/
1,864 posts
 
 

Re: Help analyze my Netmon capture?
The firewall on the router will block incoming attacks from hackers, thats why routers have firewalls to help protect the network.
My System SpecsSystem Spec
Reply

« DLINK DWA-142 installation problems in Vista 64bit | unable to RAS »
Thread Tools


Similar Threads
Thread Forum
How to analyze ERRORLEVEL in the script PowerShell
How can you capture individual thumbnails not full capture ? Vista music pictures video
Netmon - None of the adapters are bound to the netmon driver Vista networking & sharing
Support for NETMON Vista General
Support for NETMON Vista networking & sharing


Vista Forums is an independent web site and has not been authorized,
sponsored, or otherwise approved by Microsoft Corporation.
"Windows Vista", the Start Orb, and related materials are trademarks of Microsoft Corp.
© Designer Media Ltd
Contact Us - Windows Vista Forums - Archive - Privacy - Legal - Top

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46